https://live.paloaltonetworks.com/t5/general-topics/vulnerabilities-detected-during-scan/m-p/118953#M45702 <P>Hi all,&nbsp;</P><P>&nbsp;</P><P>I ran a vulnerability scan on my Palo Alto this afternoon, and I am receiving the following vulnerability:</P><P>&nbsp;</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screen Shot 2016-10-11 at 6.56.17 PM.png" style="width: 800px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/5852i6D076753D9A42B0A/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="Screen Shot 2016-10-11 at 6.56.17 PM.png" alt="Screen Shot 2016-10-11 at 6.56.17 PM.png" /></span></P><P>&nbsp;</P><P>&nbsp;</P><P>I am a little confused as to why I am receiving it since I have one TLS/SSL Service Profile (using TLSv1.2 strictly) that is setup to use a signed certificate from 3rd party CA. &nbsp;Moreover, I cannot find that certificate listed in the vulnerability anywhere on the firewall (the EMAILADDRESS=support@paloaltonetworks.com, CN=localhost, OU=Support, O=Palo Alto Networks, L=Sunnyvale, ST=CA, C=US).&nbsp; The only thing I am thinking is that I do have a self-signed certificate that I use to administer to my GlobalProtect satellites. &nbsp;</P><P>&nbsp;</P><P>Any ideas on how I could patch this? &nbsp;Any tips or advice is much appreciated.</P> Tue, 11 Oct 2016 22:56:50 GMT mmclimans 2016-10-11T22:56:50Z https://live.paloaltonetworks.com/t5/general-topics/vulnerabilities-detected-during-scan/m-p/118953#M45702 <P>Hi all,&nbsp;</P><P>&nbsp;</P><P>I ran a vulnerability scan on my Palo Alto this afternoon, and I am receiving the following vulnerability:</P><P>&nbsp;</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screen Shot 2016-10-11 at 6.56.17 PM.png" style="width: 800px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/5852i6D076753D9A42B0A/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="Screen Shot 2016-10-11 at 6.56.17 PM.png" alt="Screen Shot 2016-10-11 at 6.56.17 PM.png" /></span></P><P>&nbsp;</P><P>&nbsp;</P><P>I am a little confused as to why I am receiving it since I have one TLS/SSL Service Profile (using TLSv1.2 strictly) that is setup to use a signed certificate from 3rd party CA. &nbsp;Moreover, I cannot find that certificate listed in the vulnerability anywhere on the firewall (the EMAILADDRESS=support@paloaltonetworks.com, CN=localhost, OU=Support, O=Palo Alto Networks, L=Sunnyvale, ST=CA, C=US).&nbsp; The only thing I am thinking is that I do have a self-signed certificate that I use to administer to my GlobalProtect satellites. &nbsp;</P><P>&nbsp;</P><P>Any ideas on how I could patch this? &nbsp;Any tips or advice is much appreciated.</P> Tue, 11 Oct 2016 22:56:50 GMT https://live.paloaltonetworks.com/t5/general-topics/vulnerabilities-detected-during-scan/m-p/118953#M45702 mmclimans 2016-10-11T22:56:50Z https://live.paloaltonetworks.com/t5/general-topics/vulnerabilities-detected-during-scan/m-p/118962#M45705 <P>Hi</P> <P>that certificate is the self-signed certificate factory loaded onto the device pending replacement by a public certificate</P> <P>&nbsp;</P> <P>did you scan your management interface or a dataplane interface with a management profile (this is the most common spot for you to encounter this certificate)</P> <P>&nbsp;</P> <P>&nbsp;</P> <P>did you set the ssl/tls profile in the management configuration ?</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="2016-10-12_09-23-37.png"><img src="https://live.paloaltonetworks.com/skins/images/EAF30C9A5814E020FF754681AA726920/responsive_peak/images/image_not_found.png" alt="2016-10-12_09-23-37.png" /></span></P> Wed, 12 Oct 2016 07:27:08 GMT https://live.paloaltonetworks.com/t5/general-topics/vulnerabilities-detected-during-scan/m-p/118962#M45705 reaper 2016-10-12T07:27:08Z